RST TI Report Digest: 23 Mar 2026

Boggy Serpens (MuddyWater) is an Iranian state-sponsored cyberespionage group that has advanced from basic phishing to highly tailored, persistent intrusions against diplomatic and critical infrastructure targets—notably energy and maritime organizations in the Middle East. The report outlines their use of custom backdoors (BlackBeard, UDPGangster, Nuso, LampoRAT leveraging Telegram), account hijacking, supply-chain and remote-access techniques, and includes numerous IOCs (IP addresses, domains, and many SHA256 hashes) for detection and response.